Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/b85cdd-ba4a-458e-a7a8-1e122838a111/1/PBQVQhaFrONoLxYdMQ2ScmzfsJc.mft
File: PBQVQhaFrONoLxYdMQ2ScmzfsJc.mft (raw, json)
Hash identifier: Kq67H53N2CIqnnqdUCUNWbQmJSkAARY6UGNFlB1kvNM=
Subject key identifier: 71:F5:11:1F:DF:74:F7:82:85:0F:35:E8:1C:D4:5B:26:05:86:18:6A
Authority key identifier: 3C:14:15:42:16:85:AC:E3:68:2F:16:1D:31:0D:92:72:6C:DF:B0:97
Certificate issuer: /CN=3c1415421685ace3682f161d310d92726cdfb097
Certificate serial: 01935878307838516E3053F7DB988AED4173
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PBQVQhaFrONoLxYdMQ2ScmzfsJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/b85cdd-ba4a-458e-a7a8-1e122838a111/1/PBQVQhaFrONoLxYdMQ2ScmzfsJc.mft
Manifest number: 136E
Signing time: Sat 23 Nov 2024 10:01:31 +0000
Manifest this update: Sat 23 Nov 2024 10:01:31 +0000
Manifest next update: Sun 24 Nov 2024 10:01:31 +0000
Files and hashes: 1: PBQVQhaFrONoLxYdMQ2ScmzfsJc.crl (hash: ytyQTU56gJfFbH6Yk6jy9lDBUBC4uEmbQYl9e4V5Cmg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/b85cdd-ba4a-458e-a7a8-1e122838a111/1/PBQVQhaFrONoLxYdMQ2ScmzfsJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/b85cdd-ba4a-458e-a7a8-1e122838a111/1/PBQVQhaFrONoLxYdMQ2ScmzfsJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/PBQVQhaFrONoLxYdMQ2ScmzfsJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Nov 2024 06:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:58:78:30:78:38:51:6e:30:53:f7:db:98:8a:ed:41:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c1415421685ace3682f161d310d92726cdfb097
Validity
Not Before: Nov 23 10:01:31 2024 GMT
Not After : Nov 24 10:01:31 2024 GMT
Subject: CN=71f5111fdf74f782850f35e81cd45b260586186a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:ea:82:e4:02:76:a0:db:1e:7f:17:51:33:8a:
e3:83:03:69:34:5c:b5:66:ac:9e:45:78:17:d4:4d:
c6:09:8f:8e:f9:a5:c5:f0:d1:1a:74:d7:12:72:29:
b2:a4:e0:31:b6:85:d2:be:a1:75:9a:d4:b9:ca:26:
ee:99:2d:5a:f9:f5:e1:71:62:f3:22:2a:15:6b:e0:
f1:a2:c8:21:85:de:7d:50:33:39:97:4b:03:c5:54:
b8:a6:7e:bc:17:8a:5a:25:ba:b1:77:7e:c8:36:cc:
ae:81:2c:14:a2:c0:10:5b:b1:fe:cc:2e:f8:38:a9:
62:6c:40:0a:63:e8:01:30:c0:bb:6c:64:d3:e7:2b:
d4:0c:cc:93:f0:5a:27:29:45:11:41:2d:d4:0d:12:
3c:26:5b:6a:b4:a6:04:ac:0d:d1:3b:20:b1:3b:29:
d7:e7:6c:9f:f8:6a:40:b4:b4:58:42:57:6e:0e:8c:
b9:da:fa:af:77:28:98:bf:d9:af:2b:72:90:16:d6:
0a:2a:94:71:62:f9:b3:5e:69:ac:ab:78:41:08:36:
87:89:db:b2:5c:17:02:fa:d4:be:1f:e9:c7:2d:d3:
f0:47:b2:a6:49:cb:63:d3:c9:fe:6b:5a:a7:ee:65:
f0:06:56:6c:6e:62:91:eb:54:89:fa:55:32:be:f4:
25:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:F5:11:1F:DF:74:F7:82:85:0F:35:E8:1C:D4:5B:26:05:86:18:6A
X509v3 Authority Key Identifier:
keyid:3C:14:15:42:16:85:AC:E3:68:2F:16:1D:31:0D:92:72:6C:DF:B0:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PBQVQhaFrONoLxYdMQ2ScmzfsJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/b85cdd-ba4a-458e-a7a8-1e122838a111/1/PBQVQhaFrONoLxYdMQ2ScmzfsJc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/b85cdd-ba4a-458e-a7a8-1e122838a111/1/PBQVQhaFrONoLxYdMQ2ScmzfsJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:95:96:50:a6:3c:0e:de:0a:af:d9:1a:f0:7d:2f:31:88:4f:
c5:f3:95:58:10:52:c1:9b:a1:93:fd:57:66:5a:b1:85:83:ed:
b6:fb:ef:c5:25:84:f5:86:c6:f6:d8:52:3a:9b:76:35:05:3d:
a4:41:3e:d4:af:86:ce:e6:fb:ca:e6:d9:91:16:49:77:61:4e:
83:61:3b:fa:a6:cb:d7:a1:6e:f9:42:fc:d6:de:a1:fd:c7:65:
11:da:c8:4b:90:03:52:e6:88:cd:36:66:45:1d:36:47:07:5b:
36:62:a5:2b:78:9d:63:0a:13:c2:98:9e:b5:d0:1e:31:a2:15:
d6:2b:5e:0f:68:df:af:ee:65:28:39:68:3b:e0:b6:21:65:20:
7b:56:83:cc:bf:8a:f0:be:c6:f6:b7:bc:27:b3:14:46:74:33:
11:f8:79:e9:c3:41:65:48:2c:2f:7a:4b:bd:dd:33:a7:8d:ca:
20:aa:f0:a0:a9:91:a7:c9:09:8a:64:32:a2:1f:e5:34:3e:f9:
59:b2:65:05:d0:da:a2:e5:e5:fc:65:1b:31:a5:0e:72:e4:b4:
17:88:10:55:f6:13:14:87:69:b5:6c:b5:55:95:42:44:30:90:
bf:5f:19:77:d1:be:62:b2:86:db:cb:89:1f:50:09:c4:bf:dc:
88:1d:d3:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:02:45 2024 by rpki-client on console-fra.rpki-client.org